Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5Wqly44lBsCJClNAVEsOdflEnjM.roa
File: 5Wqly44lBsCJClNAVEsOdflEnjM.roa (raw, json)
Hash identifier: Cy/xkISPHwAmr/MWduWkDos3ebnaGdd9I9lSg5oeAAM=
Subject key identifier: E5:6A:A5:CB:8E:25:06:C0:89:0A:53:40:54:4B:0E:75:F9:44:9E:33
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DC7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5Wqly44lBsCJClNAVEsOdflEnjM.roa
Signing time: Wed 29 Sep 2021 02:39:33 +0000
ROA not before: Wed 29 Sep 2021 02:39:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3527 (0xdc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E56AA5CB8E2506C0890A5340544B0E75F9449E33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:10:77:cb:ae:39:d2:95:b6:d5:4d:0b:cf:75:
89:86:b4:87:69:c1:27:2b:da:54:4d:ae:39:dd:20:
1c:05:6b:66:35:ab:52:e1:69:ae:3b:3b:f7:db:a1:
d2:82:4b:35:8f:88:9f:14:65:e4:56:e3:64:8c:e0:
22:7a:e7:f9:b2:69:09:2a:d6:9a:dc:60:22:f4:d5:
b1:20:78:a7:c7:94:cf:dc:b9:95:c8:13:4a:1b:57:
7d:f7:36:00:b9:60:be:39:d2:40:8f:2b:b4:d6:c1:
3b:06:71:18:41:8e:68:08:ee:c1:97:0a:2b:7d:97:
9a:33:66:de:85:35:12:f0:c1:8a:e7:d8:67:ac:58:
4b:1b:a1:69:8a:f4:fd:1e:38:b5:98:43:2e:2b:67:
1b:94:13:44:23:ff:a1:dd:77:a4:e8:3c:77:f9:9d:
55:14:11:4f:63:98:25:18:a7:03:cf:d7:96:d4:75:
ec:dc:86:d6:c0:f5:c9:33:19:5c:6a:32:c3:82:ea:
36:eb:fb:bc:d6:46:67:0c:ec:d6:15:5d:86:61:61:
0d:7b:75:ae:42:ff:af:b5:15:c4:09:93:19:87:6d:
2c:45:be:4d:50:a7:37:89:db:9b:62:8c:24:6f:2c:
d1:d4:80:7f:09:10:b2:f3:f5:d9:2d:8e:42:f2:34:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6A:A5:CB:8E:25:06:C0:89:0A:53:40:54:4B:0E:75:F9:44:9E:33
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5Wqly44lBsCJClNAVEsOdflEnjM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
1e:04:23:7f:22:ba:42:a9:53:87:25:e0:a7:f6:74:f6:43:26:
c3:1e:3d:f9:7c:dd:2e:e3:e9:ec:0a:4d:02:75:8c:5e:97:06:
86:9b:df:2b:32:d7:d6:a8:e8:91:63:9a:81:ba:11:89:04:ed:
0d:6a:37:59:3f:07:f8:0b:8e:27:6e:f6:e0:ce:75:c3:d9:bd:
d2:d8:a6:d3:a4:f8:44:8a:27:c7:f4:70:43:0a:c4:da:6c:68:
f8:fd:92:f1:12:55:96:bc:de:59:b1:9f:b6:75:62:ae:99:be:
88:06:f1:70:02:f1:5e:94:df:fc:c9:71:56:31:58:82:fa:0f:
88:b0:7e:8f:f9:45:98:f4:1d:3e:2e:5f:53:1d:3d:b5:2a:79:
e7:bc:30:84:3a:11:e8:c4:21:71:b8:d7:ca:64:6c:70:8e:d1:
73:ab:26:40:9f:96:5c:c3:30:0c:d1:3f:da:60:97:5e:24:c4:
18:ce:2f:3a:37:fb:83:41:a9:e5:bf:9b:a6:20:12:9b:0c:c6:
76:21:ed:d7:7b:2e:06:5e:c4:fd:80:9c:e1:9a:5a:f3:f5:dc:
fd:a9:3a:d4:0e:37:77:52:32:4d:2a:bc:6d:85:bb:86:87:1e:
a2:86:df:c2:98:0e:8a:56:62:2e:6e:71:3c:e8:0e:0c:08:2e:
cc:0b:e0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org